Enterprise-grade security for your most sensitive content.
At Hallucinot, security isn't an afterthought — it's foundational to everything we build. We understand that you're trusting us with potentially sensitive content, and we take that responsibility seriously.
All data transmitted to and from Hallucinot is encrypted using TLS 1.3. Your content is never sent in plaintext.
Content stored in our systems is encrypted using AES-256 encryption. Database and file storage are fully encrypted.
Your data is never used to train our models or any third-party models. Period. Your content remains yours.
You control how long we retain your verification data. Delete at any time, or set automatic retention policies.
API keys are hashed using SHA-256 and never stored in plaintext. Rotate keys at any time from your dashboard.
Fine-grained permission control with read-only, write, and admin scopes. Restrict keys to specific IP addresses with IP whitelisting.
Built-in rate limiting protects against abuse. Tiered limits based on your subscription with 429 responses when exceeded.
We run on Google Cloud Platform with SOC 1, SOC 2, and ISO 27001 certified infrastructure.
We're actively working toward formal compliance certifications to meet the needs of regulated industries.
Integrate with your identity provider. Support for Okta, Azure AD, Google Workspace, and custom SAML providers.
For organizations that require complete data sovereignty, we offer on-premise deployment options.
Complete audit trail of all API calls, user actions, and system events. View from your dashboard with filtering and export capabilities.
Enterprise customers receive custom SLAs with guaranteed uptime and response time commitments.
Found a security issue? We appreciate responsible disclosure. Please report security vulnerabilities to our security team.
security@hallucinot.aiHave security questions? We're happy to discuss your specific requirements.
Contact Security Team